Intrusion Prevention

Panasonic.Security.API.Iprosapi.FilePassword.Buffer.Overflow

Description

This indicates an attack attempt against a Buffer Overflow vulnerability in the Panasonic Security API SDK.
The vulnerability, which is located in an ActiveX control, can be exploited through a vulnerable method. An attacker can exploit this by tricking an unsuspecting user into visiting a malicious webpage and execute arbitrary code within the context of the users' browser.

Affected Products

Panasonic Security API SDK prior to V.8.10.18

Impact

System Compromise: Remote attackers can execute arbitrary code within the context of the target user's browser

Recommended Actions

Apply the most recent upgrade or patch from the vendor.
http://security.panasonic.com/pss/security/library/developer.html#SDK

CVE References

CVE-2015-4648 CVE-2015-4647